The search feature lets you use basic information, such as resource name, tag name, or IP address to locate resources of interest.
Overview
Workload Discovery on AWS (formerly called AWS Perspective) is a tool to visualize AWS Cloud workloads. Use this AWS Solution to build, customize, and share detailed architecture diagrams of your workloads based on live data from AWS. The solution maintains an inventory of the AWS resources across your accounts and AWS Regions, mapping relationships between them, and displaying them in a web user interface (UI). The solution also comes with a cost query builder that lets you locate AWS resources and services that may have incurred a cost. The estimated cost data is automatically calculated for the time period specified and displays on your architecture diagrams. You can generate a cost report for your architecture diagrams that contains an overview of the estimated cost and export them as CSV. The image to the right is a sample architecture diagram generated by the solution.
Benefits
Easily search for information about resources
Explore resources across accounts and Regions
Start building your architecture diagrams by selecting a resource in the web UI, which includes a directory that contains all the resources the solution has discovered.
Save and export architecture diagrams
Save your architecture diagram to revisit later or share it with other solutions users. To use the diagrams outside of the solution, you can export to PNG, JSON, CSV,
draw.io
How it works
You can automatically deploy this architecture using the implementation guide and the accompanying AWS CloudFormation template.
Step 1
HTTP Strict-Transport-Security (HSTS) adds security headers to each response from the Amazon CloudFront distribution.
An Amazon Simple Storage Service (Amazon S3) bucket hosts the web UI, which is distributed with Amazon CloudFront. Amazon Cognito authenticates user access to the web UI.
AWS WAF protects the AppSync API from common exploits and bots that can affect availability, compromise security, or consume excessive resources.
AWS AppSync endpoints allow the web UI component to request resource relationship data, query costs, import new AWS Regions, and update preferences. AWS AppSync also allows the discovery component to store persistent data in the solution’s databases.
AWS AppSync uses JSON Web Tokens (JWTs) provisioned by Amazon Cognito to authenticate each request.
The Settings AWS Lambda function persists imported Regions and other configurations to Amazon DynamoDB.
The solution deploys AWS Amplify and an Amazon S3 bucket as the storage management component to store user preferences and saved architecture diagrams.
The data component uses the Gremlin Resolver AWS Lambda function to query and return data from an Amazon Neptune database.
The data component uses the Search Resolver Lambda function to query and persist resource data into an Amazon OpenSearch Service domain.
The Cost Lambda function uses Amazon Athena to query AWS Cost and Usage Reports (AWS CUR)
to provide estimated cost data to the web UI.
Amazon Athena runs queries on AWS CUR.
AWS CUR delivers the reports to the CostAndUsageReportBucket Amazon S3 bucket.
The Cost Lambda function stores the Amazon Athena results in the AthenaResultsBucket Amazon S3 bucket.
AWS CodeBuild builds the discovery component container image in the image deployment component.
Amazon Elastic Container Registry (Amazon ECR) contains a Docker imageprovided by the image deployment component.
Amazon Elastic Container Service (Amazon ECS) manages the AWS Fargate task and provides the configuration required to run the task. AWS Fargate runs a container task every 15 minutes to refresh inventory and resource data.
AWS Config and AWS SDK calls help the discovery component maintain an inventory of resource data from imported Regions, then store its results in the data component.
The AWS Fargate task persists the results of the AWS Config and AWS SDK calls into an Amazon Neptune database and an Amazon OpenSearch Service domain with API calls to the AppSync API.
Deploy with confidence
We'll walk you through it
Get started fast. Read the implementation guide for deployment steps, architecture details, cost information, and customization options.Open guideOpen post-deployment configuration guide
Let's make it happen
Ready to deploy? Open the CloudFormation template in the AWS Console to begin setting up the infrastructure you need. You'll be prompted to access your AWS account if you haven't yet logged in.Launch in the AWS Console
Deployment tools
Follow these links for direct access to the artifacts for this AWS Solution.
CloudFormation template
View or modify the CloudFormation template to customize your deployment.
Source code
The source code for this AWS Solution is available in GitHub.
Implementation guide
Follow the implementation guide for step-by-step actions to deploy this AWS Solution.
AWS Training & Certification
Training resources to help you solve on AWS.
Introduction to AWS Config
This course provides an introduction to AWS Config and the process of recording and normalizing configuration changes within your AWS account. We also cover use cases and configuration, and we give a brief demonstration of the service.
Amazon Neptune Service Primer
This course introduces you to Amazon Neptune and its core features and capabilities. The course describes how this service integrates with other AWS services, introduces important terminology and technology concepts, and includes a demonstration of the service.
Introduction to AWS CloudFormation
This course provides a basic overview of how AWS CloudFormation can be used to automate resource provision. It also covers use cases where CloudFormation repeatedly and predictably creates groups of resources. The course includes a demonstration in designing a CloudFormation template for resource provisioning is also covered.
Related content
Amazon MGM Studios leverages an AWS Solution
Amazon MGM Studios gains significant rime savings and increases efficiency by using Workload Discovery on AWS to automatically trace resources across their AWS environment.
Solving with AWS Solutions: Amazon MGM Studios
Learn how Amazon MGM Studios uses Workload Discovery on AWS to visualize their AWS environment.